Read at www.itpro.com
Ransomware operators are now targeting the public cloud and utilizing cloud native architectures to infect containers, making the ransomware more effective in spreading and stealing data. According to Veeam Software, 45% of production data has been affected by ransomware attacks. Additionally, the Crowdstrike threat report found a 95% increase in cloud exploitation incidents in 2022. As a result, companies are reconsidering their use of the public cloud and exploring hybrid approaches. It is important for companies to stay updated on storage options and security measures to stay ahead of vulnerabilities and protect their data.
Originally intended to spread quickly throughout on-premises settings, cyber criminals are now retooling ransomware to function on cloud native architectures and infect containers.
To prevent ransomware attacks, companies must adopt a multi-pronged strategy that includes strict authentication and access policies, patching software vulnerabilities, network and endpoint security monitoring, and preventing cloud misconfigurations through automation and training. The use of a zero trust security architecture is also important to prevent unauthorized access to data and services. Regardless of the network's distribution or infrastructure mix, organizations can enforce least privilege pre-request access decisions. Companies should also prioritize building a solid backup strategy based on the 3-2-1-1 rule.
A multi-pronged strategy is necessary for ransomware prevention. This entails safeguarding typical ransomware infection pathways through the maintenance of strict authentication and access policies; routine analysis and immediate patching of internet-exposed software vulnerabilities; and network and endpoint security monitoring.